﻿<%@ Page Title="" Language="C#" MasterPageFile="~/Site1.Master" AutoEventWireup="true" CodeBehind="AddComment.aspx.cs" Inherits="ESAM_Assignment_3.AddComment" ValidateRequest="false" %>
<asp:Content ID="Content1" ContentPlaceHolderID="head" runat="server">
    <style type="text/css">
        .style6
        {
            color: #00CC99;
        }
    </style>
</asp:Content>
<asp:Content ID="Content2" ContentPlaceHolderID="ContentPlaceHolder1" runat="server">
    <asp:Panel ID="pnlContent" runat="server" BackColor="#00CC99"
            BorderColor="Silver" BorderStyle="Solid" BorderWidth="1px">
            <b>Add New Comment:</b><br />
            <table id="tblComments" width="1000">
                <tr>
                    <td style="width=150px;">
                        Subject:
                    </td>
                    <td style="width=250px;">
                        <asp:TextBox ID="tbxSubject" runat="server" Width="200px" MaxLength="100"></asp:TextBox>
                        <asp:RequiredFieldValidator ID="RequiredFieldValidator1" runat="server" 
                            ControlToValidate="tbxSubject" Display="Dynamic" ErrorMessage="Required Field" 
                            ForeColor="Red"></asp:RequiredFieldValidator>
                    </td>
                    <td rowspan="3">
                        &nbsp;&nbsp; &nbsp;
                    </td>
                    <td rowspan="3">
                        <span class="style6">Example of a malicious code would be:</span><br class="style6" />
                        <span class="style6">&lt;a href=&#39;#&#39; onclick=&#39;open(&quot;http://msdn.microsoft.com/en-us/library/ff649310.aspx&quot;,
                            &quot;XSS&quot;, &quot;toolbar=no, menubar=no, width=400, height=200, resizable=yes&quot;)
                            &#39;&gt;Click here&lt;/a&gt; </span>
                        <br class="style6" />
                    </td>
                </tr>
                <tr>
                    <td>
                        Enter your comments:
                    </td>
                    <td>
                        <asp:TextBox ID="tbxComments" runat="server" Rows="3" TextMode="MultiLine" 
                            Width="500px" MaxLength="500"></asp:TextBox>
                        <asp:RequiredFieldValidator ID="RequiredFieldValidator2" runat="server" 
                            ControlToValidate="tbxComments" Display="Dynamic" ErrorMessage="Required Field" 
                            ForeColor="Red"></asp:RequiredFieldValidator>
                    </td>
                </tr>
                <tr>
                    <td>
                        &nbsp;
                    </td>
                    <td>
                        <asp:Button ID="btnSubmit" runat="server" OnClick="btnSubmit_Click" Text="Submit" />
                        &nbsp;<asp:Label ID="lblStatus" runat="server"></asp:Label>
                    </td>
                </tr>
            </table>
            <br />
        </asp:Panel>
</asp:Content>
